www.bagnolomella.net
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:6d:57:1d:6c:35:59:31:51:2b:40:31:ae:ef:75:65:b0:a2 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.bagnolomella.net
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:6d:57:1d:6c:35:59:31:51:2b:40:31:ae:ef:75:65:b0:a2Serial Number (int): 298543431396632151242508586601252242436258
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: b3:27:d4:46:56:e8:37:36:8a:2c:00:15:f7:b8:33:dd:74:f6:0c:4a
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 67:ab:5b:68:98:61:c9:e0:07:c8:75:d9:c6:e9:77:6f:5f:3f:56:0c
Fingerprint (sha256): 30:83:b3:a4:a4:31:61:17:d4:6f:b6:91:6c:f1:2a:37:5c:39:3e:03:f8:d3:38:c8:08:6f:5f:51:2b:d7:8c:66
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate www.bagnolomella.net
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.bagnolomella.net
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.bagnolomella.net
Other certificates including the domain name bagnolomella.net
(limited to 100 certificates)
Certificate
The complete raw certificate details for www.bagnolomella.net in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGYDCCBUigAwIBAgISA21XHWw1WTFRK0Axru91ZbCiMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0yMDA0MDQwMjIyMjBaFw0y MDA3MDMwMjIyMjBaMB8xHTAbBgNVBAMTFHd3dy5iYWdub2xvbWVsbGEubmV0MIIC IjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAquzYVJEL0V1T4/bJ5lQBhM7y ZNWrWS28NKjSijC8oddCc1purWsYoIYpOApkhb2i3v8ZMi1W9VhrswR5TBNbDbhE JyhYsFgLJnq1/CYASWOOZYNiWM0omqK2T9ZC5M21EaKWNQRR0Gww4wCXqfL1+p2J 5CA1yfW0zDoIgPAr5XG8sbZCAXjKeUv2lwnv1wXUu2V09QEzl36NsbyZmU3dK2AZ AFl9mfk6W2X3AY4QFXYXCJ/XBmoDXsWzAlNYvn8pYBwhggHhsv+Aq5uaCbVUFukK BUsWM86yuZ7/H9eYmIq5udTfeUVMTQZ1Zhgs+8n3bRzocTcEkHeTG9Zk/aR6AeOT 9alugACiWidFCPmYDvZcjynLIrmY1ZWfc7vll6EHesdPjn97PHsTYN1vwxHr6SNc UBVsu7sJ+VZNPY65nbXtl7G6SRavd9VXN9GuNH+XVsyLX04Ib1dOD4dykI5/kKkU L+OvAsjH4QbEEdqBsHPFpp3UYFQ6x6AcCfU/lxATflEIaxl6+flk5vwPKZ2YucCv mZrphRtWhAh/8sj9hqaGW2ZWZQCPtPKA8h7AcHOAVnE18K2fV18hnYBiknl8CnAV NxFbddfnbVgCgCpsXTTKAgmRRK8XtRRjigdTgG8j06W73K3v95+Sh3uIq5mVCA7/ oanK7i1qxjsrgUg9R2cCAwEAAaOCAmkwggJlMA4GA1UdDwEB/wQEAwIFoDAdBgNV HSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4E FgQUsyfURlboNzaKLAAV97gz3XT2DEowHwYDVR0jBBgwFoAUqEpqYwR93brm0Tm3 pkVl7/Oo7KEwbwYIKwYBBQUHAQEEYzBhMC4GCCsGAQUFBzABhiJodHRwOi8vb2Nz cC5pbnQteDMubGV0c2VuY3J5cHQub3JnMC8GCCsGAQUFBzAChiNodHRwOi8vY2Vy dC5pbnQteDMubGV0c2VuY3J5cHQub3JnLzAfBgNVHREEGDAWghR3d3cuYmFnbm9s b21lbGxhLm5ldDBMBgNVHSAERTBDMAgGBmeBDAECATA3BgsrBgEEAYLfEwEBATAo MCYGCCsGAQUFBwIBFhpodHRwOi8vY3BzLmxldHNlbmNyeXB0Lm9yZzCCAQQGCisG AQQB1nkCBAIEgfUEgfIA8AB2ALIeBcyLos2KIE6HZvkruYolIGdr2vpw57JJUy3v i5BeAAABcUM175gAAAQDAEcwRQIhAJfeDeggk9APaG3KNCLR9n/4gfwxOnSOZXc7 fECp4VK5AiAqkzPUW4Z2q60KHFlGMTgznd5nyHGLml0VH/wIrGXXJQB2AG9Tdqwx 8DEZ2JkApFEV/3cVHBHZAsEAKQaNsgiaN9kTAAABcUM1780AAAQDAEcwRQIgbsl/ TZ6cr0/VC5n7oxOWo8M1HbFbI8ebDKI95IlJQFkCIQCbZDycs5+zV62pKE+59g5b iQX6VQxYQu8C1zggLSxaHDANBgkqhkiG9w0BAQsFAAOCAQEAPjdPjGgFY+ramIg3 prO8QzcQN1myoJBN5KMwrJ/GIkQQ5j3XFilhVct2xCmhhL5PJFFxMzGHJqPDWhwc oWJcJ5ZZGjsYZR2kCbQ9Oz+x90XY36ORS7HPACM9FhhiDDgnYen13EBtJSe08s55 EekTLUFsaCQHln/JKjqrm/+MECF2TRIDCsF86G/NByVW/uMShisS4Xy4TTjbIDuB TjvbcX9j8LO82dXHTubIRhWkJKWvyhDnvu4AXAb3LPcOvTi6Eo34Vrp2odbg4skO aRP2BygIjhmNg4y4YmYjDlnu5Hoe6ij7tc9iNMPJGaxCQAytFLQIZqpOJ8n2hbC1 c3duAg== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAquzYVJEL0V1T4/bJ5lQB hM7yZNWrWS28NKjSijC8oddCc1purWsYoIYpOApkhb2i3v8ZMi1W9VhrswR5TBNb DbhEJyhYsFgLJnq1/CYASWOOZYNiWM0omqK2T9ZC5M21EaKWNQRR0Gww4wCXqfL1 +p2J5CA1yfW0zDoIgPAr5XG8sbZCAXjKeUv2lwnv1wXUu2V09QEzl36NsbyZmU3d K2AZAFl9mfk6W2X3AY4QFXYXCJ/XBmoDXsWzAlNYvn8pYBwhggHhsv+Aq5uaCbVU FukKBUsWM86yuZ7/H9eYmIq5udTfeUVMTQZ1Zhgs+8n3bRzocTcEkHeTG9Zk/aR6 AeOT9alugACiWidFCPmYDvZcjynLIrmY1ZWfc7vll6EHesdPjn97PHsTYN1vwxHr 6SNcUBVsu7sJ+VZNPY65nbXtl7G6SRavd9VXN9GuNH+XVsyLX04Ib1dOD4dykI5/ kKkUL+OvAsjH4QbEEdqBsHPFpp3UYFQ6x6AcCfU/lxATflEIaxl6+flk5vwPKZ2Y ucCvmZrphRtWhAh/8sj9hqaGW2ZWZQCPtPKA8h7AcHOAVnE18K2fV18hnYBiknl8 CnAVNxFbddfnbVgCgCpsXTTKAgmRRK8XtRRjigdTgG8j06W73K3v95+Sh3uIq5mV CA7/oanK7i1qxjsrgUg9R2cCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 298543431396632151242508586601252242436258 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-04-04 02:22:20 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-07-03 02:22:20 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.bagnolomella.net' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 697313880094833206816357771182694953988753852912010098927566508409786185674437091350710927632611815124622260669216963329144915878341355662294018743107616753703486568881938827766380012746263592823935876672662886017268593925527977021188478616997340018534997962269311678663139784321818440169222440576583089680960032169974263775081198850052461858982504460230175587144564808457166877940175297783664479445351388975909103374191387040399590160049462696341016581356751056785572586592424233954576861174619501613257651170812243221647852609867527411196501122205110179258922833177130122227563501337895957107873227442001020433218759929502211763828048058083690109430706962209462786540959690811172315602923947291253038596911291207659793115487054778847863987329524585983778704828324901121488107572837186479950573664209945401946741146588795216840588978402197918757759063154193437002782635493028265301897877313223277330714383287474250131042760967284155671243003390449899635345269080226312486129531988199700259026267724839814149318521704086380154842188038368776599214062614532709381824593509945751650790228599133398283268972651885989518117240682858181302264378141407436961859082015812875830724010198828713730251404943430434260367150947633877913893160807 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) b327d44656e837368a2c0015f7b833dd74f60c4a . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.bagnolomella.net' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007600b21e05cc8ba2cd8a204e8766f92bb98a2520676bdafa70e7b249532def8b905e000001714335ef98000004030047304502210097de0de82093d00f686dca3422d1f67ff881fc313a748e65773b7c40a9e152b902202a9333d45b8676abad0a1c59463138339dde67c8718b9a5d151ffc08ac65d7250076006f5376ac31f03119d89900a45115ff77151c11d902c10029068db2089a37d913000001714335efcd000004030047304502206ec97f4d9e9caf4fd50b99fba31396a3c3351db15b23c79b0ca23de4894940590221009b643c9cb39fb357ada9284fb9f60e5b8905fa550c5842ef02d738202d2c5a1c . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 003e374f8c680563eada988837a6b3bc4337103759b2a0904de4a330ac9fc6224410e63dd716296155cb76c429a184be4f24517133318726a3c35a1c1ca1625c2796591a3b18651da409b43d3b3fb1f745d8dfa3914bb1cf00233d1618620c382761e9f5dc406d2527b4f2ce7911e9132d416c682407967fc92a3aab9bff8c1021764d12030ac17ce86fcd072556fee312862b12e17cb84d38db203b814e3bdb717f63f0b3bcd9d5c74ee6c84615a424a5afca10e7beee005c06f72cf70ebd38ba128df856ba76a1d6e0e2c90e6913f60728088e198d838cb86266230e59eee47a1eea28fbb5cf6234c3c919ac42400cad14b40866aa4e27c9f685b0b573776e02